ID de Prueba:	1.3.6.1.4.1.25623.1.0.50839
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2002:065 (unzip)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to unzip announced via advisory MDKSA-2002:065. A directory traversal vulnerability was discovered in unzip version 5.42 and earlier that allows attackers to overwrite arbitrary files during extraction of the archive by using a .. (dot dot) in an extracted filename, as well as prefixing filenames in the archive with / (slash). Affected versions: 7.1, 7.2, 8.0, 8.1, 8.2, Corporate Server 1.0.1, Single Network Firewall 7.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2002:065 http://online.securityfocus.com/archive/1/196445 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1268 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1269 Risk factor : Medium CVSS Score: 2.1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2001-1268 Bugtraq: 20010712 SECURITY.NNOV: directory traversal and path globing in multiple archivers (Google Search) http://online.securityfocus.com/archive/1/196445 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000928.1-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-47800-1 Common Vulnerability Exposure (CVE) ID: CVE-2001-1269
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.